AttifyOS is a pre-configured Ubuntu-based Linux distribution designed specifically for penetration testing and security assessment of IoT devices.
Attify OS - Distro for pentesting IoT devices
This tool is used by security professionals and penetration testers who focus on identifying vulnerabilities in Internet of Things (IoT) devices. It provides a ready-to-use environment with a comprehensive suite of IoT exploitation and analysis tools, saving time on setup and configuration. Users can perform firmware analysis, wireless protocol testing, and network scanning within a single distro.
Ensure you have proper authorization before testing any IoT devices to avoid legal issues. AttifyOS is based on Ubuntu 18.04, which will receive updates until April 2023, so consider updating or migrating for longer-term support. The distro bundles many tools, so familiarity with Linux and IoT security concepts will maximize its effectiveness.
Download the AttifyOS image from the provided Google Drive link
Flash the downloaded ISO/image onto a USB drive or virtual machine
Boot the target system using the AttifyOS media
Login using credentials: username 'iot' and password 'attify'
Start using the pre-installed tools for IoT penetration testingBetterCap
Launches BetterCap for network and protocol manipulation and MITM attacks.
Binwalk <firmware_file>
Analyzes and extracts firmware images for vulnerability assessment.
NMAP -sV <target_ip>
Performs service version detection on the target network.
RouterSploit
Runs RouterSploit framework for exploiting router vulnerabilities.
GHIDRA
Opens GHIDRA reverse engineering tool for binary analysis.
Firmware Analysis Toolkit (FAT)
Automates firmware unpacking and analysis.
Scapy
Interactive packet manipulation and crafting tool.
Ubertooth tools
Tools for Bluetooth monitoring and analysis.